On Mon, Jun 18, 2012 at 03:34:48PM -0600, Bjorn Helgaas wrote:
> On Mon, Jun 18, 2012 at 3:12 PM, Dave Jones <davej at redhat.com> wrote:
> > On Mon, Jun 18, 2012 at 01:55:36PM -0700, Guenter Roeck wrote:
> >
> > > I have another suggestion: Can we get some code analysis tool to run over the
> > > kernel on a regular basis ? Or, if we do, some more ?
> > >
> > > I just happened to get a Coverity result from the 3.0 kernel. Most of the bugs
> > > it finds have been corrected in the current kernel, but some are still there.
> >
> > They are actually constantly re-running the tests on Linus' tree.
> > (Looks like the last run was on the 15th). It found 5438 potential bugs right now,
> > but it needs people to actually review the code to determine if the bug is real
> > or a false positive.
>
> Are these results public anywhere? I'm interested in scanning it for
> PCI-related things.
iirc, you email scan-admin at coverity.com and they'll set you up an account.
Dave